alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 8 Actions Packages Projects Releases Wiki Activity

increase timeout

Browse Source
This commit is contained in:
Alex Lebens
2024-07-10 18:46:43 -05:00
parent 39794dacc3
commit 89b94556df
1 changed files with 3 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
clusters/cl01tl/monitoring/trivy/values.yaml
View File

@@ -5,7 +5,7 @@ trivy-operator:
leaderElectionId: "trivyoperator-lock" leaderElectionId: "trivyoperator-lock"
scanJobTTL: "" scanJobTTL: ""
scanSecretTTL: "" scanSecretTTL: ""
scanJobTimeout: 5m scanJobTimeout: 15m
scanJobsConcurrentLimit: 10 scanJobsConcurrentLimit: 10
scanNodeCollectorLimit: 1 scanNodeCollectorLimit: 1
scanJobsRetryDelay: 30s scanJobsRetryDelay: 30s
@@ -25,7 +25,7 @@ trivy-operator:
accessGlobalSecretsAndServiceAccount: true accessGlobalSecretsAndServiceAccount: true
builtInTrivyServer: false builtInTrivyServer: false
builtInServerRegistryInsecure: false builtInServerRegistryInsecure: false
controllerCacheSyncTimeout: "5m" controllerCacheSyncTimeout: "15m"
trivyServerHealthCheckCacheExpiration: 10h trivyServerHealthCheckCacheExpiration: 10h
metricsFindingsEnabled: true metricsFindingsEnabled: true
metricsVulnIdEnabled: false metricsVulnIdEnabled: false
@@ -83,20 +83,13 @@ trivy-operator:
slow: true slow: true
ignoreUnfixed: false ignoreUnfixed: false
offlineScan: false offlineScan: false
timeout: "5m0s" timeout: "15m0s"
resources: resources:
requests: requests:
cpu: 100m cpu: 100m
memory: 128M memory: 128M
skipJavaDBUpdate: false skipJavaDBUpdate: false
serverInsecure: false serverInsecure: false
# -- existingSecret if a secret containing gitHubToken, serverToken or serverCustomHeaders has been created outside the chart (e.g external-secrets, sops, etc...).
# Keys must be at least one of the following: trivy.githubToken, trivy.serverToken, trivy.serverCustomHeaders
# Overrides trivy.gitHubToken, trivy.serverToken, trivy.serverCustomHeaders values.
# Note: The secret has to be named "trivy-operator-trivy-config".
# existingSecret: true
dbRegistry: "ghcr.io" dbRegistry: "ghcr.io"
dbRepository: "aquasecurity/trivy-db" dbRepository: "aquasecurity/trivy-db"
dbRepositoryUsername: ~ dbRepositoryUsername: ~
@@ -119,10 +112,7 @@ trivy-operator:
requests: requests:
cpu: 100m cpu: 100m
memory: 512Mi memory: 512Mi
# -- valuesFromSecret name of a Secret to apply TRIVY_* environment variables. Will override Helm AND ConfigMap values.
valuesFromSecret: "" valuesFromSecret: ""
compliance: compliance:
failEntriesLimit: 10 failEntriesLimit: 10
reportType: summary reportType: summary
@@ -153,13 +143,7 @@ trivy-operator:
tag: 0 tag: 0
registryUser: ~ registryUser: ~
registryPassword: ~ registryPassword: ~
# -- existingSecret if a secret containing registry credentials that have been created outside the chart (e.g external-secrets, sops, etc...).
# Keys must be at least one of the following: policies.bundle.oci.user, policies.bundle.oci.password
# Overrides policiesBundle.registryUser, policiesBundle.registryPassword values.
# Note: The secret has to be named "trivy-operator".
existingSecret: false existingSecret: false
insecure: false insecure: false
nodeCollector: nodeCollector:
useNodeSelector: true useNodeSelector: true